[Interface]
PrivateKey = $SERVER_PRIV_KEY
Address = 10.11.11.1/24
 
Table = off
PreUp = source /etc/wireguard/wstunnel.sh && pre_up %i
PostUp = source /etc/wireguard/wstunnel.sh && post_up %i
PostDown = source /etc/wireguard/wstunnel.sh && post_down %i 

Table = off
PreUp = source /etc/wireguard/wss.wstunnel && /etc/wireguard/do-firewall.sh allow && source /etc/wireguard/wstunnel.sh && 
pre_up %iPostUp = source /etc/wireguard/wss.wstunnel && source /etc/wireguard/wstunnel.sh && post_up %i && /etc/wireguard/do-firewall.sh deny wait &
PostDown = source /etc/wireguard/wstunnel.sh && post_down %i

[Peer]
PublicKey = $SERVER_PUB_KEY
Endpoint = 127.0.0.1:636 # Note that this points to locahost!
AllowedIPs = 0.0.0.0/0 # Probably preferred if using tunnelling
PersistentKeepAlive = 25
